> On Jun 8, 2020, at 3:07 PM, John C Klensin <john-ietf@xxxxxxx> wrote: > > > > --On Monday, June 8, 2020 20:39 +0200 Carsten Bormann > <cabo@xxxxxxx> wrote: > >> ... >> We now have the opportunity to make pervasive use of security; >> nobody knows how long that window of opportunity will stay >> open. Instead of working on changing checksums, we should go >> for it. > > <mini-rant> > While you are going for it just be sure that if the window > closes again, and closes sufficiently hard in some places to ban > the use of encrypted message flows entirely, the community is > not faced with a choice among no Internet, a highly fractionated > Internet with no communications between "crypto ok" and "crypto > prohibited" countries, or trying to limp along using protocols > that are known to be defective because we decided to ignore the > problems with them in favor of putting all of our proverbial > eggs in the pervasive security and encryption basket. > </mini-rant> Meeting this requirement requires integrity protection, not confidentiality. Russ